Ensure AWS Redshift Cluster should not be using the default port (5439)

MEDIUM

Description

Amazon Redshift clusters are using port 5439 (default port) for database access.

Remediation

In AWS Console -

Sign in to the AWS Console and open the Redshift Console.
On the navigation bar select Clusters, then choose the cluster you wish to edit.
Click on the Properties tab.
In Database Configurations, select the Edit drop-down, and then choose Edit port.
Set port to some value other than 5439

In Terraform -

In the aws_redshift_cluster resource, set port to some value other than 5439.

References:
https://docs.aws.amazon.com/redshift/latest/mgmt/working-with-clusters.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/redshift_cluster#port

Policy Details

Rule Reference ID: AC_AWS_0202

CSP: AWS

Remediation Available: Yes

Domain: Infrastructure Security

Resource: aws_redshift_cluster

Resource Category: Database

Resource Type: Redshift

Frameworks

GDPR
NIST-800-171
NIST-800-53
NIST-CSF
HIPAA